Checks whether an IPsec-VPN connection is established.
Scenario
The status of an IPsec-VPN connection affects the network connectivity of cloud resources. You can use this rule to periodically check the status of an IPsec-VPN connection. You can also set alert rules to prevent online failures caused by abnormal changes.
Risk level
Default risk level: high.
You can change the risk level as required when you apply this rule.
Compliance evaluation logic
- If an IPsec-VPN connection is in the established state, the evaluation result is compliant.
- If an IPsec-VPN connection is not in the established state, the evaluation result is non-compliant. For more information about how to correct the non-compliant configuration, see Non-compliance remediation.
Rule details
| Item | Description |
|---|---|
| Rule name | vpn-ipsec-connection-status-check |
| Rule ID | vpn-ipsec-connection-status-check |
| Tag | IPsec, VPN, and Connection |
| Automatic remediation | Not supported |
| Trigger type | Configuration change |
| Supported resource type | IPsec-VPN connection |
| Input parameter | None |
Non-compliance remediation
Establish an IPsec-VPN connection for encrypted data transmission. For more information, see Create an IPsec-VPN connection.